城市(city): unknown
省份(region): unknown
国家(country): Taiwan (Province of China)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.11.34.95
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6202
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;39.11.34.95. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022500 1800 900 604800 86400
;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 25 16:18:38 CST 2025
;; MSG SIZE rcvd: 104
95.34.11.39.in-addr.arpa domain name pointer 39-11-34-95.adsl.fetnet.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
95.34.11.39.in-addr.arpa name = 39-11-34-95.adsl.fetnet.net.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.136.108.125 | attackbotsspam | firewall-block, port(s): 500/tcp, 2211/tcp, 3400/tcp, 33396/tcp |
2019-12-25 09:08:32 |
| 106.13.181.68 | attack | Unauthorized connection attempt detected from IP address 106.13.181.68 to port 22 |
2019-12-25 08:50:57 |
| 122.165.184.94 | attack | " " |
2019-12-25 09:07:57 |
| 49.88.112.113 | attack | Dec 24 14:45:30 web9 sshd\[17223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Dec 24 14:45:33 web9 sshd\[17223\]: Failed password for root from 49.88.112.113 port 56503 ssh2 Dec 24 14:45:35 web9 sshd\[17223\]: Failed password for root from 49.88.112.113 port 56503 ssh2 Dec 24 14:45:38 web9 sshd\[17223\]: Failed password for root from 49.88.112.113 port 56503 ssh2 Dec 24 14:46:23 web9 sshd\[17401\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root |
2019-12-25 08:58:03 |
| 123.18.118.9 | attack | Unauthorized connection attempt detected from IP address 123.18.118.9 to port 445 |
2019-12-25 13:17:18 |
| 79.23.15.71 | attackspam | Lines containing failures of 79.23.15.71 Dec 24 23:16:17 sanyalnet-cloud-vps2 sshd[14568]: Connection from 79.23.15.71 port 55475 on 45.62.253.138 port 22 Dec 24 23:16:17 sanyalnet-cloud-vps2 sshd[14569]: Connection from 79.23.15.71 port 62779 on 45.62.253.138 port 22 Dec 24 23:16:19 sanyalnet-cloud-vps2 sshd[14569]: Invalid user pi from 79.23.15.71 port 62779 Dec 24 23:16:19 sanyalnet-cloud-vps2 sshd[14568]: Invalid user pi from 79.23.15.71 port 55475 Dec 24 23:16:21 sanyalnet-cloud-vps2 sshd[14568]: Failed password for invalid user pi from 79.23.15.71 port 55475 ssh2 Dec 24 23:16:21 sanyalnet-cloud-vps2 sshd[14569]: Failed password for invalid user pi from 79.23.15.71 port 62779 ssh2 Dec 24 23:16:21 sanyalnet-cloud-vps2 sshd[14568]: Connection closed by 79.23.15.71 port 55475 [preauth] Dec 24 23:16:21 sanyalnet-cloud-vps2 sshd[14569]: Connection closed by 79.23.15.71 port 62779 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=79.23.15.71 |
2019-12-25 09:08:11 |
| 86.252.108.168 | attack | Dec 25 00:11:56 pegasus sshguard[1297]: Blocking 86.252.108.168:4 for >630secs: 10 danger in 1 attacks over 0 seconds (all: 10d in 1 abuses over 0s). Dec 25 00:11:57 pegasus sshd[14740]: Failed password for invalid user scanner from 86.252.108.168 port 57114 ssh2 Dec 25 00:11:57 pegasus sshd[14740]: Received disconnect from 86.252.108.168 port 57114:11: Bye Bye [preauth] Dec 25 00:11:57 pegasus sshd[14740]: Disconnected from 86.252.108.168 port 57114 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=86.252.108.168 |
2019-12-25 08:52:18 |
| 66.240.192.138 | attackspam | Fail2Ban Ban Triggered |
2019-12-25 08:50:05 |
| 46.38.144.117 | attackspam | Dec 25 05:51:47 auth: Info: passwd-file(graphic-design@djejm.de,46.38.144.117): unknown user Dec 25 05:53:27 auth: Info: passwd-file(cart@djejm.de,46.38.144.117): unknown user Dec 25 05:55:07 auth: Info: passwd-file(lenta@djejm.de,46.38.144.117): unknown user Dec 25 05:56:48 auth: Info: passwd-file(echofish@djejm.de,46.38.144.117): unknown user Dec 25 05:58:29 auth: Info: passwd-file(psycho@djejm.de,46.38.144.117): unknown user |
2019-12-25 13:03:03 |
| 185.214.164.10 | attack | MYH,DEF POST /downloader/ |
2019-12-25 13:20:14 |
| 64.90.186.102 | attackspam | Dec 25 05:58:20 MK-Soft-VM7 sshd[473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.90.186.102 Dec 25 05:58:22 MK-Soft-VM7 sshd[473]: Failed password for invalid user z from 64.90.186.102 port 45498 ssh2 ... |
2019-12-25 13:08:49 |
| 202.29.30.253 | attackspambots | Auto reported by IDS |
2019-12-25 13:06:35 |
| 218.92.0.155 | attackbotsspam | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.155 user=root Failed password for root from 218.92.0.155 port 27746 ssh2 Failed password for root from 218.92.0.155 port 27746 ssh2 Failed password for root from 218.92.0.155 port 27746 ssh2 Failed password for root from 218.92.0.155 port 27746 ssh2 |
2019-12-25 13:00:33 |
| 112.255.239.184 | attack | Dec 25 00:25:49 debian-2gb-nbg1-2 kernel: \[882687.227449\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=112.255.239.184 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=42 ID=40225 PROTO=TCP SPT=55194 DPT=23 WINDOW=55370 RES=0x00 SYN URGP=0 |
2019-12-25 09:09:28 |
| 185.176.27.26 | attack | Scanning random ports - tries to find possible vulnerable services |
2019-12-25 09:05:20 |